Container Security Insights for Your Homelab
- Vulnerability Scanning - Trivy integration with KEV tagging, CVSS scoring, and comprehensive history
- Compliance Monitoring - Docker Bench CIS compliance checks with weekly reporting
- Image Efficiency Analysis - Dive layer analysis for optimization insights
- Secret Detection - Scan for exposed credentials with false-positive triage
- Real-time Progress - SSE-powered scan status updates
- 7 Notification Services - Gotify, Pushover, Slack, Discord, Telegram, Email, ntfy
- Activity Logging - Complete audit trail of all operations
- Database Encryption - AES-128 encryption for sensitive fields
- Light/Dark Theme - Automatic system preference detection
- Self-Hosted - Your data stays on your infrastructure
Default Mode: Runs with no authentication for easy setup. Configure authentication in Settings before exposing to the internet.
- 📚 Documentation: GitHub Wiki
- 🌐 Website: homelabforge.io/builds/vulnforge
- 🐛 Bug Reports: GitHub Issues
- 💬 Discussions: GitHub Discussions
MIT License - see LICENSE file for details.
Built for homelabbers who want comprehensive container security insights without relying on third-party services.
Part of the HomelabForge ecosystem.
VulnForge was developed through AI-assisted pair programming with Claude and Codex, combining human vision with AI capabilities for architecture, security patterns, and implementation.